
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.mft
File: yIYjh23RrY5iSiPdUossZMgKhSE.mft (raw, json)
Hash identifier: f37lnHAhsAbKgeQtrdr8UCV9kDgIEZA3ZSfUt1RGlqI=
Subject key identifier: 8B:E9:63:00:13:A6:02:F9:FC:36:CC:A4:D6:D0:90:D8:61:80:E7:8D
Authority key identifier: C8:86:23:87:6D:D1:AD:8E:62:4A:23:DD:52:8B:2C:64:C8:0A:85:21
Certificate issuer: /CN=c88623876dd1ad8e624a23dd528b2c64c80a8521
Certificate serial: 01976DABF69A1D104D6D7A3FE099C0DAFAEF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yIYjh23RrY5iSiPdUossZMgKhSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.mft
Manifest number: 04B0
Signing time: Sat 14 Jun 2025 09:01:15 +0000
Manifest this update: Sat 14 Jun 2025 09:01:15 +0000
Manifest next update: Sun 15 Jun 2025 09:01:15 +0000
Files and hashes: 1: 6bGSQZyXICWLbBfHBORwDUVmEgs.roa (hash: 1jQZKU6KRpYxffMVHliAkA59/J/hUE4iGAwCvJDdSlw=)
2: yIYjh23RrY5iSiPdUossZMgKhSE.crl (hash: WCXhILvbCw28GsbF+sbHMw+AZqzC72SrwkhgdFaJY1k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/yIYjh23RrY5iSiPdUossZMgKhSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:ab:f6:9a:1d:10:4d:6d:7a:3f:e0:99:c0:da:fa:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c88623876dd1ad8e624a23dd528b2c64c80a8521
Validity
Not Before: Jun 14 09:01:15 2025 GMT
Not After : Jun 15 09:01:15 2025 GMT
Subject: CN=8be9630013a602f9fc36cca4d6d090d86180e78d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:e7:db:da:3f:6d:da:39:de:27:d9:e8:67:c8:
4b:18:9f:8d:cd:37:6c:2c:1c:bd:bc:ec:25:1e:a1:
70:1c:31:60:90:7b:bb:c0:2a:b6:c0:ae:1c:42:c7:
1b:51:df:cf:25:63:7f:75:fa:44:a9:ef:eb:9f:01:
90:cd:29:8e:e6:71:67:25:04:bf:86:12:90:8e:b6:
56:c1:03:20:aa:58:59:5c:40:1d:49:a5:43:50:00:
18:15:92:c7:c9:ee:a5:75:a4:1d:e4:0b:99:c8:8c:
5a:0b:1c:19:60:25:64:31:f4:1c:47:5b:1a:5b:cf:
ea:ab:de:71:b1:89:1f:f4:21:16:0e:01:05:c8:32:
32:1d:fb:00:76:78:4c:ea:4d:d1:d8:ca:7e:17:2a:
8e:95:f8:aa:25:2a:05:07:e4:0e:ee:32:4d:f8:96:
35:46:98:9d:f0:ab:c9:d2:27:8c:ea:bc:b7:db:af:
4b:8c:50:f0:40:ca:da:ae:17:16:03:d7:39:8a:08:
1b:f0:ad:47:43:b9:3a:a9:dd:c7:e4:eb:95:6b:9e:
b5:ab:8e:02:0f:f3:3a:c3:a3:83:f5:af:91:a1:99:
55:5d:ba:0d:68:d7:dd:3c:a7:89:69:70:c3:70:10:
80:ea:2c:7e:ce:08:93:9f:51:70:64:d8:85:fa:01:
ab:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:E9:63:00:13:A6:02:F9:FC:36:CC:A4:D6:D0:90:D8:61:80:E7:8D
X509v3 Authority Key Identifier:
keyid:C8:86:23:87:6D:D1:AD:8E:62:4A:23:DD:52:8B:2C:64:C8:0A:85:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yIYjh23RrY5iSiPdUossZMgKhSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:23:8a:0b:5d:a5:a3:71:a2:a6:a0:ea:10:0a:9e:9b:4d:a2:
34:99:62:a7:35:98:b3:1b:e0:03:f0:85:e3:e1:1b:6c:58:1c:
c4:85:8c:d3:73:94:f4:89:35:04:f3:db:46:08:0a:e8:c8:c2:
e7:aa:9f:85:5a:11:a9:c7:da:0f:a5:be:bd:43:e8:d0:46:6a:
0b:b9:a2:33:ba:cf:69:b3:83:7b:22:12:bb:0c:aa:ef:63:00:
8b:36:1e:33:8c:1a:d8:8a:24:e1:6b:33:11:c2:f7:ef:94:1a:
5c:63:e5:b4:73:92:42:19:64:13:a0:a9:56:a7:2e:0e:a1:43:
11:99:bc:8e:4d:de:75:cc:b8:84:e8:73:9b:09:5c:8e:f3:5a:
4d:8e:11:ab:66:83:e9:fa:e2:09:af:f8:72:56:06:7f:87:89:
b9:0e:b1:1a:44:0d:be:5e:02:59:df:2a:d7:3c:99:99:78:a3:
19:99:05:d9:d0:50:28:26:8f:e0:9c:6f:99:3c:3e:46:34:f8:
29:37:0d:82:d7:05:85:36:bf:90:54:ae:48:4b:72:b3:19:bd:
39:f4:3a:94:a9:c7:48:d2:5c:ad:85:87:12:f4:f0:ed:51:94:
31:92:de:00:ae:b3:36:63:c4:71:88:19:f1:fa:a8:1f:b1:7b:
2e:eb:66:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 12:49:50 2025 by rpki-client